Arbitrary Script Injection Vulnerability in Google Chrome Bookmarks Feature

Arbitrary Script Injection Vulnerability in Google Chrome Bookmarks Feature

CVE-2015-1264 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in Google Chrome before 43.0.2357.65 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted data that is improperly handled by the Bookmarks feature.

Learn more about our Cis Benchmark Audit For Google Chrome.